Explore

Rapid Read Rapid Read
Linux Systems Face Immediate Threat from 'Dirty Frag' Vulnerability

Linux Systems Face Immediate Threat from 'Dirty Frag' Vulnerability

A new vulnerability known as 'Dirty Frag' has been discovered in Linux systems, allowing low-privilege users to gain root access. This marks the second severe vulnerability in Linux within two weeks. The exploit, which has been leaked online, is deterministic and works across various Linux distributions without causing system crashes, making it difficult to detect. The vulnerability is particularly concerning in shared environments where multiple users access the same server. Security researchers have urged Linux users to apply patches immediately to mitigate the risk. The vulnerability was disclosed by researcher Hyunwoo Kim, and proof-of-concept exploits are already available, increasing the urgency for system administrators to act.
Rapid Read Rapid Read
Linux Kernel Vulnerabilities Prompt Urgent Patches Following Disclosure Breach

Linux Kernel Vulnerabilities Prompt Urgent Patches Following Disclosure Breach

Major Linux distributions are urgently releasing patches to address two newly discovered vulnerabilities in the Linux kernel, collectively known as 'Dirty Frag'. These vulnerabilities, identified by security researcher Hyunwoo Kim, involve a local privilege escalation flaw that could allow attackers to gain root access on affected systems. The vulnerabilities were disclosed prematurely, leading to a rush in patch development. The flaws, tracked as CVE-2026-43284 and CVE-2026-43500, have been present in the kernel for several years, posing significant security risks.
Rapid Read Rapid Read
JDownloader Site Hacked to Distribute Python RAT Malware to Users

JDownloader Site Hacked to Distribute Python RAT Malware to Users

The website for JDownloader, a popular download manager, was compromised to distribute malicious installers for Windows and Linux. The attack, which occurred between May 6 and May 7, 2026, involved altering download links on the official site to point to malicious payloads. The Windows payload deployed a Python-based remote access trojan (RAT). The breach was first reported by a Reddit user who noticed that the installers were flagged as malicious by Microsoft Defender. The JDownloader developers confirmed the compromise, stating that attackers exploited an unpatched vulnerability in the website's content management system. This allowed them to change access control lists and content without authentication. The attack affected only the alternative Windows installer and the Linux shell installer links, while other download methods remained secure. Users are advised to verify the legitimacy of installers by checking digital signatures and to reinstall their operating systems if they executed the compromised ...
Rapid Read Rapid Read
Instructure Faces Ransom Threat Over Data Leak Impacting 8,800 School Systems

Instructure Faces Ransom Threat Over Data Leak Impacting 8,800 School Systems

Attackers associated with a group known as The Com have issued a ransom demand to Instructure, the company responsible for the Canvas learning management system. The threat involves the potential release of sensitive data from over 8,800 school systems unless the ransom is paid. The deadline for Instructure to respond is approaching, raising significant concerns about the potential impact on educational institutions nationwide. This situation highlights the vulnerabilities within the educational sector, which often lacks the cybersecurity resources available to larger corporations. The reliance on digital platforms for educational and administrative purposes means that a data breach could severely compromise student privacy and disrupt educational operations.
Rapid Read Rapid Read
Operation HookedWing Targets Over 500 Organizations in Extensive Phishing Campaign

Operation HookedWing Targets Over 500 Organizations in Extensive Phishing Campaign

A phishing campaign known as Operation HookedWing has targeted over 500 organizations across various sectors, including aviation, critical infrastructure, energy, logistics, public administration, and technology. The campaign, active since 2022, has stolen more than 2,000 user credentials by using phishing emails that impersonate human resources or colleagues. These emails often contain links to GitHub repositories and simulate Microsoft Outlook behavior to deceive victims. The campaign has adapted its infrastructure over the years, using GitHub domains and compromised servers, and has expanded its targeting to include French content. SOCRadar reports that the campaign focuses on environments with access to sensitive information and high-privilege credentials.
Rapid Read Rapid Read
Instructure Confirms Canvas Security Breach, Hackers Exploit Flaw to Deface Portals

Instructure Confirms Canvas Security Breach, Hackers Exploit Flaw to Deface Portals

Instructure, the developer of the Canvas learning management system (LMS), has confirmed a security breach that allowed hackers to exploit a vulnerability and deface login portals. The breach involved multiple cross-site scripting (XSS) vulnerabilities, enabling attackers to obtain authenticated admin sessions. Initially discovered on April 29, the breach led to the theft of over 3.6 terabytes of uncompressed data, which was later published by the hacker group ShinyHunters. The hackers used the same vulnerability to conduct a second attack on May 7, aiming to pressure Instructure into paying a ransom. The breach affected the Free-for-Teacher environment, a limited version of Canvas LMS. Instructure temporarily took Canvas offline to prevent further malicious activity and applied additional safeguards. The hackers' actions impacted 8,809 educational organizations, with stolen data including usernames, email addresses, and course information.
Rapid Read Rapid Read
Instructure Confirms Security Breach Exploiting Canvas Vulnerability

Instructure Confirms Security Breach Exploiting Canvas Vulnerability

Instructure, the developer of the Canvas learning management system, has confirmed a security breach that allowed hackers to exploit a vulnerability and deface login portals. The breach involved cross-site scripting (XSS) vulnerabilities, enabling attackers to gain authenticated admin sessions. The hackers used this access to leave extortion messages on the portals, pressuring Instructure to negotiate a ransom. The breach was initially discovered on April 29, and a subsequent attack occurred on May 7. Instructure has since taken steps to revoke unauthorized access and engage forensic experts to investigate the incident.
Rapid Read Rapid Read
ShinyHunters Launches Ransom Campaign Against Educational Institutions

ShinyHunters Launches Ransom Campaign Against Educational Institutions

The ShinyHunters ransomware group has intensified its extortion campaign against educational institutions following a data breach at Instructure, the company behind the Canvas Learning Management System. The breach, which occurred on April 25, resulted in the theft of approximately 275 million records from 8,809 institutions. ShinyHunters exploited a vulnerability in the Free-For-Teacher version of Canvas, exfiltrating over 3.65 TB of data. The group initially demanded a ransom by May 8, threatening to leak the data if not paid. With the deadline passed, they have begun targeting individual schools with extortion demands, threatening to release data by May 12 if settlements are not reached.
Rapid Read Rapid Read
FBI Urges Router Security Measures Following Russian Cyber Attacks

FBI Urges Router Security Measures Following Russian Cyber Attacks

The FBI, along with the NSA, has issued a warning to the public regarding a cyber attack by a Russian military intelligence unit known as APT28 or Fancy Bear. This group has been compromising home and small office routers across 23 states since at least 2024. The attack involves intercepting credentials and sensitive communications by exploiting vulnerabilities in routers. The FBI has taken the unusual step of remotely resetting thousands of affected devices under a court order. However, they emphasize that individual router owners must take action to secure their devices. The agency recommends updating router firmware and changing default login credentials to prevent further exploitation.
Rapid Read Rapid Read
Cyberattack on Canvas Learning System Puts Millions of Student and Teacher Data at Risk

Cyberattack on Canvas Learning System Puts Millions of Student and Teacher Data at Risk

A significant cyberattack has targeted Instructure, the company behind the Canvas learning management system, which is widely used by K-12 schools and universities across the United States. The hacking group ShinyHunters has claimed responsibility for the breach, which has potentially compromised data from millions of students and teachers. The attack was discovered on April 29, 2026, and has led to disruptions in educational institutions, particularly during the critical period of final exams. Instructure has taken Canvas offline to investigate and contain the breach, affecting many schools' ability to conduct online learning. The compromised data includes names, email addresses, and student identification numbers, though there is no evidence yet of more sensitive information like Social Security numbers being accessed. The incident has prompted some school districts to temporarily disable access to Canvas as a precautionary measure.
Rapid Read Rapid Read
Universities Postpone Final Exams Following Canvas Hack, Affecting Students Nationwide

Universities Postpone Final Exams Following Canvas Hack, Affecting Students Nationwide

Colleges and universities across the United States have postponed final exams and assignment deadlines due to a hack on Canvas, a widely used learning management system. The disruption affected 41% of North American higher education institutions. The University of Illinois at Urbana-Champaign and Baylor University are among those that have rescheduled exams, with Baylor planning to restore access to its Canvas system after the company, Instructure, resolved the issue. Arizona State University and the University of California System have also taken precautionary measures, with the latter temporarily blocking Canvas access until security is assured. The hack, claimed by the criminal group ShinyHunters, reportedly compromised personal information for millions of students and employees worldwide. Instructure has since restored Canvas but has temporarily shut down its Free-For-Teacher accounts to prevent further unauthorized access.
Rapid Read Rapid Read
JDownloader Site Compromised, Distributes Python RAT Malware

JDownloader Site Compromised, Distributes Python RAT Malware

The website for JDownloader, a popular download manager, was compromised to distribute malicious installers for Windows and Linux. The attack, occurring between May 6 and May 7, 2026, involved modifying download links to point to malicious payloads, including a Python-based remote access trojan (RAT). The compromise was first reported on Reddit, and the developers confirmed the breach, taking the site offline for investigation. The attack exploited an unpatched vulnerability, affecting only certain download links. Users are advised to verify installer legitimacy and reinstall operating systems if affected.